Why Control System Cyber-Security Sucks

<!--HTML--><p>COMPUTER SECURITY SERIES - @CERN</p> <p><span>Securing IT systems in themselves is already a challenge. But when it comes to control systems using or requiring IT components, devices of the Internet-of-Things (IoT) or similar equipment with embedded IT-functionality, the pain surfaces... This presentation will review the main problems CERN is facing when trying to cyber-secure its accelerator control-systems, looked at what worked out reasonably well, and discuss the lessons learned for the future. En gros, however, the conclusion might be that control-system cyber-security simply sucks.</span></p> <p><strong>About the speaker</strong></p> <p>Stefan Lüders is the CERN Computer Security Officer.</p>